How do I disable login.do?

timb3 · ‎06-13-2018

We are using single sign-on, and would like to restrict access to local logins. The glide.authentication.external.disable_local_login system property is set to true, and glide.authenticate.failed_requirement_redirect is set as well, but I can still get in via login.do. Is there another property that needs to be set to prevent this?

I've renamed the side_door.do, and this will be our way to log in if there is a SSO issue, we just want to prevent someone from trying login.do.

spartacus1 · ‎10-23-2018

Hi,

May I know how you managed to renamed side_door.do ? I want to rename it also

Thanks

Regards

hk91 · ‎12-04-2018

Hello,

To rename /side_door.do

- add system property 'glide.authenticate.external.side_door_uri' and set the value to be a string using any secret value that you intend to use. For example, secret_side_door

Mayuri9 · ‎03-18-2020

I read in the community on the other similar article, this property is not supported by serviceNow technical team as the change in property is not according to the best practice. can you let me know what precautinary measures we need to take to support it in the upgrade process and reason why it doesn't come under best practices?

adamjgreenberg · ‎04-08-2020

I'm not sure why this would not be supported as this is an available property for you to customize.

Best practice is to leave this alone as if you change it to something else and no one knows what you changed it to, they will be unable to access this feature.

adamjgreenberg · ‎03-07-2019

You'll need to add a system property to your instance.

name = 'glide.authenticate.external.side_door_uri'

value = 'name_of_your_desired_extension' - ie: admin_access.do

Logout of your instance and test the new value